$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hLyPx-igRs19-7gVvzrhN_FLh3c.roa File: hLyPx-igRs19-7gVvzrhN_FLh3c.roa (raw, json) Hash identifier: gHR5HbraD+lEuj6uD5pUjdVI1W0m6rTicLFXYvfrt9o= Subject key identifier: 84:BC:8F:C7:E8:A0:46:CD:7D:FB:B8:15:BF:3A:E1:37:F1:4B:87:77 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A54 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hLyPx-igRs19-7gVvzrhN_FLh3c.roa Signing time: Fri 22 Aug 2025 08:53:57 +0000 ROA not before: Fri 22 Aug 2025 08:53:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 60.245.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6740 (0x1a54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=84BC8FC7E8A046CD7DFBB815BF3AE137F14B8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:f8:1c:4c:0f:88:0c:56:35:8d:6c:25:84: 0e:54:98:04:2f:29:28:9f:cb:d1:13:c4:c1:98:b7: 29:b4:df:29:02:56:d9:71:41:d3:33:87:9f:4e:57: c0:25:79:53:36:0f:4d:b6:59:e1:bb:32:a1:df:bb: 72:eb:bb:4d:17:3d:b0:10:78:db:7e:1f:f3:ad:38: 49:21:a7:15:26:d0:d5:af:4d:2e:8f:7f:d4:81:ac: 4d:a9:ae:1c:7e:fd:fa:88:bc:bc:ac:3d:b3:eb:e5: dd:6c:ad:f2:a9:59:9e:2b:64:84:4a:e5:b6:1b:13: d4:91:65:a8:45:86:98:99:66:b6:de:07:24:b5:4f: 63:a6:76:9f:56:30:5d:7a:21:d7:70:59:23:8e:f4: 7f:d9:a7:ef:02:48:ae:7e:b4:fa:cd:75:d2:e7:bb: ed:e2:d9:5a:fa:54:69:19:01:fe:5e:cc:4b:e4:44: 1d:35:e7:84:10:f1:1a:a7:25:b0:17:82:e0:d5:a0: fa:51:c3:94:48:76:ba:c7:38:11:c0:c8:cf:eb:6c: 6e:b9:86:33:e7:ad:68:db:35:49:7c:6c:2d:f8:78: c7:19:38:5f:dc:47:e7:a4:8d:9f:be:f8:df:c9:11: bb:3a:1d:bd:ba:7f:12:80:48:46:9d:d0:c6:ab:b3: ac:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:BC:8F:C7:E8:A0:46:CD:7D:FB:B8:15:BF:3A:E1:37:F1:4B:87:77 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hLyPx-igRs19-7gVvzrhN_FLh3c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.96.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:e3:b6:4c:57:b2:76:7f:de:e9:d3:a0:b1:b1:66:fc:58:c4: b7:5b:29:41:6b:16:d2:8b:d9:f3:e5:af:18:ed:11:50:63:ec: 6f:3a:88:fa:16:46:0e:82:56:61:c4:47:88:25:24:8f:69:c2: 49:a2:dc:35:f5:80:38:16:57:7f:23:ee:6c:01:84:58:8b:00: 08:29:1d:37:40:05:47:ca:cd:05:69:1f:b4:e7:6b:ab:c9:be: c7:7b:f1:86:2e:36:b4:8d:3c:fa:de:c3:99:16:99:de:e0:f0: d6:d2:a1:74:d3:18:20:7b:09:19:8e:f9:2b:90:d1:59:3c:c4: ab:15:8e:3e:3b:e2:3b:03:0f:a2:11:30:73:57:b3:85:75:ca: 44:b9:07:1a:f6:ff:83:f1:96:64:a7:87:66:3e:fd:e0:cc:64: 1c:8e:c6:f2:78:b7:41:01:36:9f:d2:c4:d3:5f:ab:56:2f:6c: a9:05:a0:45:d5:11:bd:3d:8a:8e:a7:eb:b5:f5:16:c5:0f:60: 6b:f8:b9:a3:d4:c5:f2:98:6e:9e:7f:dc:d2:9d:fd:0b:4a:36: 41:bc:c4:f9:b4:9c:7e:0d:6e:3d:6e:40:a3:71:a8:65:c6:a5: a8:b9:fe:2b:8d:0d:49:7a:fe:69:69:34:b0:15:c9:b8:3f:0c: 4c:68:8d:13 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0QkM4RkM3RThBMDQ2 Q0Q3REZCQjgxNUJGM0FFMTM3RjE0Qjg3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP0/gcTA+IDFY1jWwlhA5UmAQvKSify9ETxMGYtym03ykCVtlx QdMzh59OV8AleVM2D022WeG7MqHfu3Lru00XPbAQeNt+H/OtOEkhpxUm0NWvTS6P f9SBrE2prhx+/fqIvLysPbPr5d1srfKpWZ4rZIRK5bYbE9SRZahFhpiZZrbeByS1 T2Omdp9WMF16IddwWSOO9H/Zp+8CSK5+tPrNddLnu+3i2Vr6VGkZAf5ezEvkRB01 54QQ8RqnJbAXguDVoPpRw5RIdrrHOBHAyM/rbG65hjPnrWjbNUl8bC34eMcZOF/c R+ekjZ+++N/JEbs6Hb26fxKASEad0Mars6wxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhLyPx+igRs19+7gVvzrhN/FLh3cwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaEx5UHgtaWdSczE5LTdnVnZ6cmhO X0ZMaDNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBDz1YDAN BgkqhkiG9w0BAQsFAAOCAQEAS+O2TFeydn/e6dOgsbFm/FjEt1spQWsW0ovZ8+Wv GO0RUGPsbzqI+hZGDoJWYcRHiCUkj2nCSaLcNfWAOBZXfyPubAGEWIsACCkdN0AF R8rNBWkftOdrq8m+x3vxhi42tI08+t7DmRaZ3uDw1tKhdNMYIHsJGY75K5DRWTzE qxWOPjviOwMPohEwc1ezhXXKRLkHGvb/g/GWZKeHZj794MxkHI7G8ni3QQE2n9LE 01+rVi9sqQWgRdURvT2KjqfrtfUWxQ9ga/i5o9TF8phunn/c0p39C0o2QbzE+bSc fg1uPW5Ao3GoZcalqLn+K40NSXr+aWk0sBXJuD8MTGiNEw== -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:42 2025 by rpki-client